OSX.Flashback.K

April 9, 2012

OSX.Flashback.K is malware that opens a back door on Apple Mac OS X computers. This Trojan may arrive on the compromised computer by exploiting the Oracle Java SE Remote Java Runtime Environment Denial Of Service Vulnerability (BID 52161). The Trojan then obtains the following system information from the compromised computer:

  • HW.machine
  • Kernel information
  • Machine type
  • OS information
  • Password
  • User ID

Removal

Symantec has developed a removal tool for this malware: http://norton.com/flashback

For more information, please visit Symantec at: http://www.symantec.com/security_response/writeup.jsp?docid=2012-041001-0020-99